Apple has released Rapid Security Response updates for iOS, iPadOS, macOS, and Safari web browsers to address zero-day flaws that are actively being exploited in the wild.
WebKit bugs (cataloged as follows) CVE-2023-37450, could allow an attacker to execute arbitrary code when processing specially crafted web content. The iPhone maker said it addressed the issue with improved checks.
An anonymous researcher is credited with discovering and reporting this flaw. As in most cases like this, very few details are known about the nature and scale of the attacks and the identity of the attackers behind them.
However, in a brief advisory, Apple said it was “aware of reports that this issue may have been actively exploited.”
🔐 PAM Security – Expert Solutions to Secure Sensitive Accounts
Gain the knowledge and strategies you need to transform your privileged access security strategy in this expert-led webinar.
reserve a spot
The updates, iOS 16.5.1 (a), iPadOS 16.5.1 (a), macOS Ventura 13.4.1 (a), and Safari 16.5.2 are available for devices running the following operating system versions:
Apple has addressed 10 zero-day vulnerabilities in its software since early 2023. The vulnerability also arrived weeks after the company released a patch to fix three of his zero-day vulnerabilities, two of which were related to an espionage campaign called and weaponized by an unidentified attacker. Operation Triangulation.
